john prisco chief executive officer

John PriscoChief Executive Officer

SINET 16 Presentation

The Facts

• 69% OF BREACHES WERE SPOTTED BY AN EXTERNAL PARTY.

• Only 9% OF BREACHES WERE DISCOVERED BY INTERNAL IT STAFF

• 66% OF CASES WERE NOT DISCOVERED FOR MONTHS, EVEN YEARS

2013 Data Breach Report621 Confirmed Data Breaches, 44 Million Compromised Records, 47,000 Security Incidents

The New Defense-In-Depth Strategy

Network Endpoint

Sandbox

WEAKNESSES

- Masked executables and encrypted traffic defeat the sandbox

- Rule set uses prior knowledge

- Rule set independent of prior knowledge

- Detects masked executables and encrypted traffic

TRIUMFANT ADVANTAGES

Virtualization Whitelisting

- Does not detect malware- Persistent components susceptible

to breach- Requires enterprise-wide computer

hardware ‘forklift’ upgrade

- No lockdown required- Effective for servers and endpoints

- Must lockdown enterprise for effective use

- Maintenance too difficult for endpoints

- Detects and remediates malware- Operates with all existing hardware

TRIUMFANT ADVANTAGES TRIUMFANT ADVANTAGES

WEAKNESSES WEAKNESSES

Current Solutions

AdaptiveReference

ModelDatabase

Collector

CollectorAgents

Agents

PolicyTemplates

Triumfant Big Data Analytics ApproachModel Creation

Analytic Engine

Root CauseAnalysisAdaptive

ReferenceModel

Database

Collector

CollectorAgents

Analytic Engine

PolicyTemplates

Responses

RA

RK

Triumfant Big Data Analytics ApproachDiagnose and Remediate

Agents

Triumfant is a McAfee Compatible certified member of the McAfee

Security Innovation Alliance.

Triumfant is a certified member of the ArcSight Common Event Format (CEF) Partner Program.

Triumfant is integrated with Symantec.

Triumfant has developed a “comply to connect” product with Juniper.

Triumfant is integrated with bmcRemedy.

Partners

Common Criteria EAL2+

Certification

U.S. Army Information Assurance Approved

Product

FDCC SCAP – NIST certified

CyberScope – NIST certified

Certifications

http://www.juniper.net/us/en/

http://www.google.com/url?sa=i&source=images&cd=&cad=rja&docid=p-_1vOuDJMScFM&tbnid=p6E0W0Z0kjVGuM:&ved=0CAgQjRwwAA&url=http://www.intersystems.com/cache/security/&ei=93BdUqrXFIuh4APT4YHYCQ&psig=AFQjCNE-myl0As-Su533oSW6HjE15LM6uQ&ust=1381941879372169

http://www.google.com/url?sa=i&source=images&cd=&cad=rja&docid=q9i6mXd8bcAK_M&tbnid=GBSoTyFBQgTSHM:&ved=0CAgQjRwwAA&url=http://www.findthatlogo.com/united-states-army-strong-logo/&ei=W3RdUtTbLpPi4APBo4GoCg&psig=AFQjCNETTOPullRnRhXJ08rBOHAibspVZg&ust=1381942747794486

http://www.google.com/url?sa=i&source=images&cd=&cad=rja&docid=rBJBeFv9xeVycM&tbnid=jrJE7edb9szayM:&ved=0CAgQjRwwAA&url=http://www.chickenwingsw.com/webportfolio&ei=pXRdUtjiOPf_4AOVq4DoBw&psig=AFQjCNHxMZdQJjShfU3kYiwfu5nIWC6xnA&ust=1381942821958649

http://www.google.com/url?sa=i&source=images&cd=&cad=rja&docid=rBJBeFv9xeVycM&tbnid=jrJE7edb9szayM:&ved=0CAgQjRwwAA&url=http://www.chickenwingsw.com/webportfolio&ei=pXRdUtjiOPf_4AOVq4DoBw&psig=AFQjCNHxMZdQJjShfU3kYiwfu5nIWC6xnA&ust=1381942821958649

Summary: If you have implemented these defenses…

Triumfant completes your defense-in-depth strategy

You also need a pragmatic, cost-effective endpoint defense:

If you’re

Sandbox FW+IDS/IPS,

Whitelisting

Virtualization

[email protected]

Thank You!

If you’re

mailto:[email protected]

john prisco chief executive officer

Documents

data breaches

examples of data

data breach report621

collectors proces

sandbox rule set

adaptive reference models

security incidents

detailed security policy